4 matches found
CVE-2023-48320
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebDorado SpiderVPlayer allows Stored XSS.This issue affects SpiderVPlayer: from n/a through 1.5.22...
CVE-2023-48320 WordPress Video Player Plugin <= 1.5.22 is vulnerable to Cross Site Scripting (XSS)
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebDorado SpiderVPlayer allows Stored XSS.This issue affects SpiderVPlayer: from n/a through 1.5.22...
CVE-2023-48320
CVE-2023-48320 (SpiderVPlayer) is a Stored XSS in WebDorado SpiderVPlayer up to version 1.5.22 due to improper input neutralization during web page generation. Exploitation requires administrator privileges; impact is stored scripts in pages viewed by users. remediation: upgrade to a version late...
WordPress Video Player Plugin <= 1.5.22 is vulnerable to Cross Site Scripting (XSS)
Software Video Player Type Plugin Vulnerable versions = 1.5.22 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-48320 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 90d3d469b500 Credits SeungYongLee Required privilege...